István Lam of Tresorit talks with host Kim Carter about GDPR (the EU General Data Protection Regulation, which has been described as “the most important change in data privacy regulation in 20 years”). The discussion covers terminology, planning, implementation, users’ access and their rights regarding their personal data, managing personally identifiable information (PII) across organizations, and required documentation. István talks about establishing the intent of different types of PII; when data can be stored, shared, or sold; storage of backups, the ability to reveal, modify, or remove all PII of a customer.